automating hybrid cloud networking within and across enterprise datacenters, branches and clouds
TRANSCRIPT
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
AutomatingHybridCloudNetworkingwithinandacrossEnterpriseDatacenters,BranchesandCloudsToshalDudhwala,ProductSolutions&Strategy
@tdudh - [email protected]
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
DigitalTransformationisdrivingcloudarchitecturesandITautomation
• AllEnterprisesmusttransformthemselvestoSoftwareDrivenBusinesses
• RapidintroductionofnewServices
• Learn,adapt,refineandreintroducequicklyandconsistently
• SuperbCustomerExperience
Source:Gigaom
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
• Mustenablelatesttechtoolstostaycompetitive
• MustenableDevOpsModel
• DevOpsisthepathtoBusinessAgility
ITmustaligntoBusinessNeeds
Business Needs
IT Strategy
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
NetworkTransformationisthepathtoDevOps
DisruptioninNetworkingSD-DCandSDWAN
BigShiftinOperationalMindset
MarriageofIP&IT
ClosingtheGAPbetweenApplications
&Networking
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
IntroducingNuageNetworks
• NuageNetwork,fullownedsubsidiaryofNokia(formerAlcatel-Lucent)isbasedinSiliconValleywithateamaroundtheworld
• ANokiaventure,focusedondatacenterandbranchofficenetworkevolution forthecloudera
- LeverageNokiainfrastructureandkeytechnologies
• CreationofanAbstraction&Automationlayerbetweennetworkingfeaturesandhardwareequipment
• Policy-driven networkingdesign reflectingbusinessdirectives,notnetworkprotocols
VPN
VPN
VPN
VPN
NetworkVirtualization
Internet
IPRoutingPolicy-based
EndpointAttachment
SOFTWAREDEFINEDNETWORKING
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
VirtualizedServicesDirectory(VSD)• NetworkPolicyEngine– abstractscomplexity• Servicetemplatesandanalytics
VirtualizedServicesController(VSC)• SDNController,programsthenetwork• Richroutingfeatureset
VirtualRouting&Switching(VRS)• Distributedswitch/router– L2-4rules• Supportsleadinghypervisorsandbase
metalassets• Virtual(VRS)andPhysical(VSG)form-
factors
NetworkServicesGateway(NSG)• Networkserviceplatformforbranches• L2-L4Switchingandroutingwith
advancednetworkfunctions• PhysicalorVirtualform-factors
NuageNetworksVirtualizedServicesPlatform(VSP)
VirtualCloudServices(VCS“SDN”) VirtualNetworkServices(VNS“SDWAN”)NSG/VRS/VSG/VRS-G• Micro-segmentationw/stateful ACL
support• SecurityAnalytics• Trafficsteeringtohoney-pot• Integrationw/securitypartners
VirtualSecurityServices(VSS“SDSecurity”)
NuageNetworksVSPSolution
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
DatacentertoCloud:MultiHypervisor/Tenancy/DC
ESXiOverlay
ESXi
ESXi
ESXi
ESXi
KVM
KVMOverlay
KVM KVM
KVM
Bare Metal
Bare Metal
Bare Metal
Bare Metal
Bare MetalOverlay
Container
Container
Container
Container
ContainerOverlay
Hyper-VOverlay
Hyper-V
Hyper-V
Hyper-V
Data Center -1 Data Center -2
PrivateCloud
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
TransformationofDatacentertoCloud
PrivateCloud
Data Center -1 Data Center -2
Service Overlay #1 Service Overlay #2
Service Overlay #3
VSC VSC
VSD
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
FinalPicture:DatacentertoCloud
PrivateCloud
Data Center -1 Data Center -2
Service Overlay #1 Service Overlay #2
Service Overlay #3 TotalFlexibilityü AnyWorkloadü AnyHypervisorü AnyOrchestrationü AnyDatacenterü AnyNetworkunderlayü AnyCombination
VSC VSC
VSD
ConsistentAutomationandTotalcontrol
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
TheSD-WANJourney
HQ Branch Partners
WideAreaNetwork(WAN)Data Center
Private IP
IPVPN
VPLS
Public IP(Internet)
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
SD-WAN:OverPrivateIPandInternet
HQ Branch
IPVPN
Partners
VPLS
Data Center
Private IP
SD-WAN
Public IP(Internet)
Branch Branch
WideAreaNetwork(WAN)
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
SD-WAN:OverPrivateIPandInternet+ConnectingtoExistingServices
HQ Branch
IPVPN
Partners
VPLS
Data Center
Private IP
SD-WAN
SD-WAN
Public IP(Internet)
Branch Branch
WideAreaNetwork(WAN)
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
FinalPicture:SD-WAN
HQ Branch
IPVPN
Partners
VPLS
Data Center
Private IP
SD-WAN
SD-WAN
Public IP(Internet)
Branch Branch
WideAreaNetwork(WAN)
Service Overlay #1 Service Overlay #2
Service Overlay #3 TotalFlexibilityü AnyNetworkü AnyLocationü AnyService;L2orL3ü AnyUplinkü AnyX86Platformü Allcombinations
VSC VSC
VSD
ConsistentAutomationandTotalcontrol
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
IslandsofAutomation
PublicCloud
?SD-DC SD-WAN?
HQ Branch
IPVPN
WideAreaNetwork
VPLS
DataCenter
PrivateIP
PublicIP(Internet)
Branch Branch
VirtualizedServices
Controller
VirtualizedServicesDirectory
VirtualizedServicesController
Partners
ServiceOverlay #1 ServiceOverlay #2ServiceOverlay #3
Public Cloud
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
JourneytoAutomatedNetworkswithoutBorders
HQ Branch
IPVPN
VPLS
Data Center
Private IP
Public IP(Internet)
Branch BranchPartners
VSC VSC
VSD
WideAreaNetwork(WAN) PublicCloud
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
JourneytoAutomatedNetworkswithoutBorders
HQ Branch
IPVPN
VPLS
Data Center
Private IP
Public IP(Internet)
Branch BranchPartners
VSC VSC
VSD
WideAreaNetwork(WAN) PublicCloud
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
FinalDestination:AutomatedNetworkswithoutBorders
HQ Branch
IPVPN
WideAreaNetwork
VPLS
DataCenter
PrivateIP
PublicIP(Internet)
Branch Branch
Public Cloud
Partners
PrivateCloud
DataCenter -1 DataCenter -2
Service Overlay #1
Service Overlay #2Service Overlay #3
VSC VSC
VSD
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
FinalDestination:AutomatedNetworkswithoutBorders
ü FullyAutomated
ü FullFlexibility
ü TotalControl
ü Secure
ü On-Demand
ü AnyNetworkInfrastructure
ü ConsistentPolicyFrameworkforallusecases
ConnectingUsersinAnylocationtoApplicationsinAnyCloud
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
NuageNetwork– TheonlySDNPlatformyouneed
VSP: Unified Multi-tenanted Policy and Control VSSInsight VSAPAssurance
BM-connectivity
Hypervisor*
Hypervisor*
Hypervisor*
Hypervisor*
Hypervisor*
Hypervisor*
VM-connectivityContainers-Connect
VCS:VirtualizedCloudServices
Hybrid-connectivity
L2
Tenant A
Tenant B
L2
L2
Mul$ple'Transport'links' Separa$on'of'service'
from'transport'
Applica$on7aware'path'selec$on'
Site'
Site'
SD-WAN connectivity
VNS:VirtualizedNetworkServices
Virtualized Services Directory (VSD)
Virtualized Services Controller (VSC)
UnifiedNetworkPolicyandAutomationPlatformfromtheDCtotheBranch,topubliccloud
Networking‘glue’connectingusersandapplications
Kubernetes
AnyCloudenvironment
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
Workasa“Team”– NuageNetworksTechnologyPartnerEcosystem
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
InConclusion….
üEnterprisestransformingtheirITtobecomemoreagile&responsive
üNuageVSPprovidesprogrammablenetworksacrossDatacenter,BranchVPN,andPublicCloud
üSingledeclarativepolicyagnosticoftheorchestrator,networkorworkloadtype
üRich&Richertechnologypartnerecosystem
NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.
THANK YOU@nuagenetworks